Lucene search
K

492 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.7 views

Ubuntu 22.04 LTS / 24.04 LTS : Go Networking vulnerabilities (USN-8089-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8089-1 advisory. Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go Networking could ha...

7.5CVSS7.5AI score0.04561EPSS
Exploits1References7
OSV
OSV
added 2026/03/12 4:28 p.m.11 views

USN-8089-1 golang-golang-x-net vulnerabilities

Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go Networking could hang during shutdown if preempted by a fatal error. An attacker could possibly use this to cause a denial of service. This issue only affected Ubuntu 22.04 LT...

7.5CVSS6.8AI score0.04561EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2026/03/12 4:28 p.m.6 views

USN-8089-1: Go Networking vulnerabilities

Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go Networking could hang during shutdown if preempted by a fatal error. An attacker could possibly use this to cause a denial of service. This issue only affected Ubuntu 22.04 LT...

7.5CVSS7.3AI score0.04561EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/03/07 12:0 a.m.3 views

SUSE SLED15 / SLES15 Security Update : grpc (SUSE-SU-2026:0840-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0840-1 advisory. This update for grpc fixes the following issue: - CVE-2023-33953: unbounded memory and CPU consumption in the HPACK...

7.5CVSS5.8AI score0.00412EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/03/06 11:36 a.m.3 views

Security update for grpc

This update for grpc fixes the following issue: CVE-2023-33953: unbounded memory and CPU consumption in the HPACK parser leads to remote DoS bsc1214148. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS5.8AI score0.00412EPSS
Exploits0References4
OSV
OSV
added 2026/03/06 11:36 a.m.2 views

SUSE-SU-2026:0840-1 Security update for grpc

This update for grpc fixes the following issue: - CVE-2023-33953: unbounded memory and CPU consumption in the HPACK parser leads to remote DoS bsc1214148...

7.5CVSS5.8AI score0.00412EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/02/18 2:32 a.m.3 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS7.4AI score0.03782EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 9:33 a.m.3 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS5.8AI score0.03782EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 9:33 a.m.3 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS5.8AI score0.03782EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 12:48 a.m.3 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS7.4AI score0.03782EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 4:3 p.m.3 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS5.8AI score0.03782EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 4:3 p.m.2 views

nodejs: Nodejs denial of service

A denial of service flaw has been discovered in NodeJS. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of...

7.5CVSS5.8AI score0.03782EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2026/01/27 8:20 a.m.8 views

Security update for nodejs22

This update for nodejs22 fixes the following issues: Security fixes: CVE-2026-22036: Fixed unbounded decompression chain in HTTP response leading to resource exhaustion bsc1256848 CVE-2026-21637: Fixed synchronous exceptions thrown during callbacks that bypass TLS error handling and causing denia...

9.2CVSS6.1AI score0.03782EPSS
Exploits2References28
OSV
OSV
added 2026/01/26 2:47 p.m.4 views

BIT-NODE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS5.9AI score0.03782EPSS
Exploits0References21
OSV
OSV
added 2026/01/20 9:16 p.m.4 views

UBUNTU-CVE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS7.2AI score0.03782EPSS
Exploits0References3
OSV
OSV
added 2026/01/20 8:41 p.m.5 views

CVE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS5.9AI score0.03782EPSS
Exploits0References22
Vulnrichment
Vulnrichment
added 2026/01/20 8:41 p.m.3 views

CVE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS5.5AI score0.03782EPSS
Exploits0References1
CVE
CVE
added 2026/01/20 8:41 p.m.28 views

CVE-2025-59465

CVE-2025-59465 is observed affecting Node.js packages across multiple Amazon Linux and Fedora advisories. The issue concerns Node.js HTTP/2 server handling of malformed HEADERS frames with oversized HPACK data, leading to a crash via an unhandled TLSSocket error (ECONNRESET) and remote DoS. Affec...

7.5CVSS5.5AI score0.03782EPSS
Exploits0References20Affected Software1
AlpineLinux
AlpineLinux
added 2026/01/20 8:41 p.m.3 views

CVE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS5.6AI score0.03782EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : toolbox-0.0.99.4-6.el9 (AXSA:2023-6916:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6916:03 advisory. go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper...

9.8CVSS8.1AI score0.04561EPSS
Exploits0References11
Rows per page
Query Builder